Lucene search
K

15 matches found

RedHat Linux
RedHat Linux
added 2020/07/21 2:51 p.m.2 views

Mozilla: Add-On updates did not respect the same certificate trust rules as software updates

The Mozilla Foundation Security Advisory describes this flaw as: When performing add-on updates, certificate chains terminating in non-built-in-roots were rejected even if they were legitimately added by an administrator. This could have caused add-ons to become out-of-date silently without...

6.5CVSS7.3AI score0.01843EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2020/07/21 2:34 p.m.3 views

Mozilla: Add-On updates did not respect the same certificate trust rules as software updates

The Mozilla Foundation Security Advisory describes this flaw as: When performing add-on updates, certificate chains terminating in non-built-in-roots were rejected even if they were legitimately added by an administrator. This could have caused add-ons to become out-of-date silently without...

6.5CVSS7.3AI score0.01843EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2020/07/20 12:0 a.m.30 views

openSUSE Security Update : MozillaThunderbird (openSUSE-2020-982)

This update for MozillaThunderbird to version 68.10.0 ESR fixes the following issues : - CVE-2020-12417: Memory corruption due to missing sign-extension for ValueTags on ARM64 bsc1173576. - CVE-2020-12418: Information disclosure due to manipulated URL object bsc1173576. - CVE-2020-12419:...

9.3CVSS7.7AI score0.03034EPSS
Exploits2References6
OSV
OSV
added 2020/07/17 4:30 p.m.8 views

OPENSUSE-SU-2020:0982-1 Security update for MozillaThunderbird

This update for MozillaThunderbird to version 68.10.0 ESR fixes the following issues: - CVE-2020-12417: Memory corruption due to missing sign-extension for ValueTags on ARM64 bsc1173576. - CVE-2020-12418: Information disclosure due to manipulated URL object bsc1173576. - CVE-2020-12419:...

9.3CVSS7.6AI score0.03034EPSS
Exploits2References7
Tenable Nessus
Tenable Nessus
added 2020/07/17 12:0 a.m.33 views

Scientific Linux Security Update : thunderbird on SL6.x i386/x86_64 (20200716)

Security Fixes : - Mozilla: Information disclosure due to manipulated URL object CVE-2020-12418 - Mozilla: Use-after-free in nsGlobalWindowInner CVE-2020-12419 - Mozilla: Use-After-Free when trying to connect to a STUN server CVE-2020-12420 - Mozilla: Add-On updates did not respect the same...

9.3CVSS7.7AI score0.03034EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2020/07/16 7:42 a.m.8 views

Mozilla: Add-On updates did not respect the same certificate trust rules as software updates

The Mozilla Foundation Security Advisory describes this flaw as: When performing add-on updates, certificate chains terminating in non-built-in-roots were rejected even if they were legitimately added by an administrator. This could have caused add-ons to become out-of-date silently without...

6.5CVSS7.3AI score0.01843EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2020/07/15 12:0 a.m.35 views

Scientific Linux Security Update : thunderbird on SL7.x x86_64 (20200714)

Security Fixes : - Mozilla: Memory corruption due to missing sign-extension for ValueTags on ARM64 CVE-2020-12417 - Mozilla: Information disclosure due to manipulated URL object CVE-2020-12418 - Mozilla: Use-after-free in nsGlobalWindowInner CVE-2020-12419 - Mozilla: Use-After-Free when trying to...

9.3CVSS7.7AI score0.03034EPSS
Exploits2References6
RedHat Linux
RedHat Linux
added 2020/07/14 11:37 a.m.2 views

Mozilla: Add-On updates did not respect the same certificate trust rules as software updates

The Mozilla Foundation Security Advisory describes this flaw as: When performing add-on updates, certificate chains terminating in non-built-in-roots were rejected even if they were legitimately added by an administrator. This could have caused add-ons to become out-of-date silently without...

6.5CVSS7.3AI score0.01843EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2020/07/14 11:16 a.m.3 views

Mozilla: Add-On updates did not respect the same certificate trust rules as software updates

The Mozilla Foundation Security Advisory describes this flaw as: When performing add-on updates, certificate chains terminating in non-built-in-roots were rejected even if they were legitimately added by an administrator. This could have caused add-ons to become out-of-date silently without...

6.5CVSS7.3AI score0.01843EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2020/07/14 11:16 a.m.52 views

Important: Red Hat Security Advisory: thunderbird security update

An update for thunderbird is now available for Red Hat Enterprise Linux 8.1 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...

9.3CVSS6.9AI score0.03034EPSS
Exploits2References7
Tenable Nessus
Tenable Nessus
added 2020/07/10 12:0 a.m.37 views

CentOS 6 : firefox (RHSA-2020:2824)

The remote CentOS Linux 6 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2020:2824 advisory. - Manipulating individual parts of a URL object could have caused an out-of-bounds read, leaking process memory to malicious JavaScript. This...

9.3CVSS8AI score0.03034EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2020/07/06 9:22 p.m.4 views

Mozilla: Add-On updates did not respect the same certificate trust rules as software updates

The Mozilla Foundation Security Advisory describes this flaw as: When performing add-on updates, certificate chains terminating in non-built-in-roots were rejected even if they were legitimately added by an administrator. This could have caused add-ons to become out-of-date silently without...

6.5CVSS7.3AI score0.01843EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2020/07/06 8:56 p.m.3 views

Mozilla: Add-On updates did not respect the same certificate trust rules as software updates

The Mozilla Foundation Security Advisory describes this flaw as: When performing add-on updates, certificate chains terminating in non-built-in-roots were rejected even if they were legitimately added by an administrator. This could have caused add-ons to become out-of-date silently without...

6.5CVSS7.3AI score0.01843EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2020/07/06 8:52 p.m.54 views

Important: Red Hat Security Advisory: firefox security update

An update for firefox is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

9.3CVSS6.9AI score0.03034EPSS
Exploits1References5
CNVD
CNVD
added 2020/07/03 12:0 a.m.1 views

Multiple Mozilla Products Trust Management Issues Vulnerabilities

Mozilla Firefox and others are products of the Mozilla Foundation in the U.S.A. Mozilla Firefox is an open source web browser.Mozilla Firefox ESR is an extended support version of Firefox web browser.Mozilla Thunderbird is a suite of e-mail client software separate from the Mozilla Application...

6.5CVSS8.9AI score0.01843EPSS
Exploits0References1
Rows per page
Query Builder